Reliability Assessment in Information Security Management Systems Using a System Dynamics Approach

An Information Security Management System (ISMS) must encompass all aspects and levels of an organization, integrating people, processes, and technology to safeguard critical assets. Effective implementation of an ISMS requires strategic investments in areas such as attack prevention, vulnerability reduction, and threat deterrence. A review of the literature highlights the pivotal role of security tools in achieving these goals. This study adopts a system dynamics approach to analyze ISMS, identifying key influencing factors and developing a system dynamics model to assess the impact of investments in security tools. The model’s reliability was verified, and some investment scenarios were simulated. The scenario that achieved a reliability score exceeding ۰.۶ in the shortest time was identified as the optimal solution.